Does 2FA Stop Hackers?

2FA (two-factor authentication), or also called two-step login, has become more popular to use when logging into websites and services. What I’m noticing is a trend that people think 2FA will stop hackers or phishing or the many other attacks that can happen. 2FA can help, in some situations, but it’s not some magic cure. …

Read more

Categories 2FA

Can You Use A Yubikey For Multiple Accounts?

Black Yubikey 5 USB-A

With the rise of 2FA (two-factor authentication) we’re seeing an increase in people wanting to use physical keys, or Yubikey’s as they called, more and more. Since Yubikey’s are so new to people, they may wonder if they can use it for multiple online accounts? They may even have people telling them they need to …

Read more

Categories 2FA

Hierarchy of 2FA – Why We Don’t Need SMS 2FA

To understand why we don’t need SMS 2FA, we’ll order the factors from least secure to most secure. Password Password + SMS 2FA Password + Authenticator App Unique Password Unique Password + U2F *A unique password is a reasonable length, random, and never reused password. Password – Affected by phishing attacks, credential stuffing attacks, malware, and brute force …

Read more

Categories 2FA

Why Google Authenticator and Authy 2FA Are So Effective?

A common trend I see is the rush to turn on 2FA like Google Authenticator and Authy, but do people understand why it’s so effective? Google Authenticator and Authy are TOTP (Time-based One-time Password) 2FA. I’m going to show you what makes TOTP 2FA so effective and why this matters. How TOTP 2FA Works When …

Read more

Categories 2FA